Vulnerabilities (CVE)

Filtered by vendor Matroska Subscribe

Filtered by product Libebml

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-3405	3 Debian, Fedoraproject, Matroska	3 Debian Linux, Fedora, Libebml	2022-04-26	4.3 MEDIUM	6.5 MEDIUM
A flaw was found in libebml before 1.4.2. A heap overflow bug exists in the implementation of EbmlString::ReadData and EbmlUnicodeString::ReadData in libebml.
CVE-2015-8790	1 Matroska	1 Libebml	2017-01-20	4.3 MEDIUM	4.3 MEDIUM
The EbmlUnicodeString::UpdateFromUTF8 function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted UTF-8 string, which triggers an invalid memory access.
CVE-2015-8791	1 Matroska	1 Libebml	2016-12-03	4.3 MEDIUM	4.3 MEDIUM
The EbmlElement::ReadCodedSizeValue function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted length value in an EBML id, which triggers an invalid memory access.